Closed jacobq closed 4 years ago
There are several deprecation warnings in my app caused by this package due to dated npm@3.5.4
dependency:
npm WARN deprecated lodash.isarray@4.0.0: This package is deprecated. Use Array.isArray.
npm WARN deprecated minimatch@1.0.0: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
npm WARN deprecated minimatch@2.0.10: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
npm WARN deprecated tough-cookie@2.2.2: ReDoS vulnerability parsing Set-Cookie https://nodesecurity.io/advisories/130
npm WARN deprecated node-uuid@1.4.8: Use uuid module instead
Also interested in knowing when this will be updated
ember-cli 2.x has been around for years and 3.0.0 is in
beta
right now, yet this project is still on 1.x Several other dependencies (see list below) are multiple major versions behind the latest. This is particularly problematic for things likenpm
(see https://github.com/shipshapecode/ember-cli-release/issues/63). For this addon to continue to be useful / relevant I believe we really need to get it up to date. Is this project still maintained? Would you accept a PR updating dependencies provided that tests are still passing?